Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

RedhatCVE
RedhatCVEadded 2026/04/09 10:13 p.m.1 views

CVE-2026-5194

A flaw was found in wolfSSL. Missing hash/digest size and Object Identifier OID checks allow the acceptance of smaller, less secure digests during the verification of Elliptic Curve Digital Signature Algorithm ECDSA certificates. This could enable a remote attacker, with knowledge of the public...

10CVSS5.9AI score0.00019EPSS
Exploits1References4
AlpineLinux
AlpineLinuxadded 2026/04/09 7:30 p.m.0 views

CVE-2026-5194

Missing hash/digest size and OID checks allow digests smaller than allowed when verifying ECDSA certificates, or smaller than is appropriate for the relevant key type, to be accepted by signature verification functions. This could lead to reduced security of ECDSA certificate-based authentication...

9.3CVSS7.2AI score0.00019EPSS
Exploits1
AlpineLinux
AlpineLinuxadded 2026/01/27 4:1 p.m.3 views

CVE-2025-15469

Issue summary: The 'openssl dgst' command-line tool silently truncates input data to 16MB when using one-shot signing algorithms and reports success instead of an error. Impact summary: A user signing or verifying files larger than 16MB with one-shot algorithms such as Ed25519, Ed448, or ML-DSA m...

5.5CVSS5.8AI score0.00007EPSS
Exploits1
RedhatCVE
RedhatCVEadded 2026/01/13 10:52 p.m.2 views

CVE-2026-22705

RustCrypto: Signatures offers support for digital signatures, which provide authentication of data using public-key cryptography. Prior to version 0.1.0-rc.2, a timing side-channel was discovered in the Decompose algorithm which is used during ML-DSA signing to generate hints for the signature...

6.4CVSS7AI score0.00016EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/01/10 6:14 a.m.25 views

CVE-2026-22705 RustCrypto: Signatures has timing side-channel in ML-DSA decomposition

RustCrypto: Signatures offers support for digital signatures, which provide authentication of data using public-key cryptography. Prior to version 0.1.0-rc.2, a timing side-channel was discovered in the Decompose algorithm which is used during ML-DSA signing to generate hints for the signature...

6.4CVSS0.00016EPSS
Exploits0References3
RustSec
RustSecadded 2025/12/04 12:0 p.m.3 views

Incorrect calculation on aarch64

On platforms without the core::arch::aarch64::vxarqu64 intrinsic, an unverified fallback in libcrux-intrinsics v0.0.3 passed incorrect arguments and produced wrong results. This corrupted SHA-3 digests and caused libcrux-ml-kem and libcrux-ml-dsa to sample incorrectly, yielding incorrect shared...

7AI score
Exploits0Affected Software1
Positive Technologies
Positive Technologiesadded 2024/05/22 12:0 a.m.2 views

PT-2024-24129 · Open Quantum Safe · Liboqs

Name of the Vulnerable Software and Affected Versions: Open Quantum Safe liboqs version 10.0 Description: An issue in Open Quantum Safe liboqs allows a remote attacker to escalate privileges via the crypto sign signature parameter in the /pqcrystals-dilithium-standard ml-dsa-44-ipd avx2/sign.c...

9.8CVSS9.4AI score0.01365EPSS
Exploits1References7
Rows per page
Query Builder